http://secunia.com/advisories/16466/
Description:
A vulnerability has been reported in Adobe Reader and Adobe Acrobat, which potentially can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an unspecified boundary error in the core application plug-in and can be exploited to cause a buffer overflow when a specially crafted file is opened.
What to do?
Solution:
Install updated version.
Both Windows/Mac OS and Linux/Solaris versions of Adobe Reader are affected. Additionally, full Adobe Acrobat for Windows/Mac OS is affected.
Windows and Mac versions less than 7.0.3 and 6.0.4 contain this security vulnerability. Linux versions less than 7.0.1 contain this vulnerability. In full version of Adobe Acrobat versions less than 7.0.3, 6.0.4 and 5.0.10 are affected.
Update instructions:
From http://www.adobe.com/support/techdocs/321644.html :
Adobe Reader on Windows or Mac OS:
-- For version 7.0-7.0.2, users should utilize the product's automatic update facility. The default installation configuration runs automatic updates on a regular schedule, and can be manually activated by choosing Help > Check For Updates Now. Alternatively, the 7.0.3 update files can also be manually downloaded and installed from: www.adobe.com/support/downloads .
-- For versions prior to 7.0, Adobe strongly recommends upgrading to Adobe Reader 7.0.3, available from the following site along with the update procedure described above. www.adobe.com/products/acrobat/readstep2.html
-- For users of Adobe Reader 6.0-6.0.3 who cannot upgrade to Adobe Reader 7.0.3, utilize the product's automatic update facility to install version 6.0.4, or alternatively download and install the update from www.adobe.com/support/downloads .
Please visit http://www.adobe.com/support/downloads or use internal Check For Updates feature as soon as possible!
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.10) Gecko/20050717 Firefox/1.0.6
